root
/
harbor
mirror of https://github.com/goharbor/harbor.git
1
0
Fork 0
Code Issues Actions 4 Packages Projects Releases Wiki Activity
12,496 Commits 68 Branches 341 Tags 452 MiB
Commit Graph

12496 Commits

Author SHA1 Message Date
Prasanth Baskar ada851b49a
Fix: Helm Chart Copy Button in UI (#21969)
Build Package Workflow / BUILD_PACKAGE (push) Has been cancelled Details
Code scanning - action / CodeQL-Build (push) Has been cancelled Details 
* fix: helm chart copy btn in UI

Signed-off-by: bupd <bupdprasanth@gmail.com>

* add: tests for pull command component in UI

Signed-off-by: bupd <bupdprasanth@gmail.com>

---------

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-05-09 13:38:01 +08:00
Chlins Zhang 9e18bbc112
refactor: replace interface{} to any (#21973)
Build Package Workflow / BUILD_PACKAGE (push) Waiting to run Details
Code scanning - action / CodeQL-Build (push) Waiting to run Details
CI / UTTEST (push) Has been cancelled Details
CI / APITEST_DB (push) Has been cancelled Details
CI / APITEST_DB_PROXY_CACHE (push) Has been cancelled Details
CI / APITEST_LDAP (push) Has been cancelled Details
CI / OFFLINE (push) Has been cancelled Details
CI / UI_UT (push) Has been cancelled Details 
Signed-off-by: chlins <chlins.zhang@gmail.com>
 2025-05-08 11:02:49 +00:00
stonezdj(Daojun Zhang) 49df3b4362
Display gc progress information in running state (#21974) 
fix #21411

Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-05-08 14:25:05 +08:00
Raphael Zöllner bc8653abc7
Add manifestcache push for tag and digest to local repository (#21141)
Build Package Workflow / BUILD_PACKAGE (push) Waiting to run Details
Code scanning - action / CodeQL-Build (push) Waiting to run Details 
Signed-off-by: Raphael Zöllner <raphael.zoellner@regiocom.com>
 2025-05-07 09:22:26 +00:00
stonezdj(Daojun Zhang) f684c1c36e
change python ./setup.py install to pip install . because deprecated (#21952)
Build Package Workflow / BUILD_PACKAGE (push) Has been cancelled Details
Code scanning - action / CodeQL-Build (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-core, dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-core, v2.12.0-dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-db, dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-db, v2.12.0-dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-exporter, dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-exporter, v2.12.0-dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-jobservice, dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-jobservice, v2.12.0-dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-log, dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-log, v2.12.0-dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-portal, dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-portal, v2.12.0-dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-registryctl, dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (harbor-registryctl, v2.12.0-dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (prepare, dev) (push) Has been cancelled Details
Trivy Nightly Scan / Trivy Scan nightly (prepare, v2.12.0-dev) (push) Has been cancelled Details
CONFORMANCE_TEST / CONFORMANCE_TEST (push) Has been cancelled Details
Housekeeping - Close stale issues and PRs / stale (push) Has been cancelled Details 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-04-30 13:40:45 +08:00
Daniel Jiang 70306dca0c
Generate URI of token service via Host in request (#21898) 
This commit update the flow to generate URL of token service, which will
first try to use the Host in request.  This will help the situation when
Harbor is configured to serve via a hostname but some client needs to
pull artifacts from Harbor via IP due to limitations in the environment.

Signed-off-by: Daniel Jiang <daniel.jiang@broadcom.com>
 2025-04-28 16:23:09 +08:00
Wang Yan b3cfe225db
unify the golang image version (#21935) 
Make the golang version as a unified parameter to build all harbor components

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-04-27 14:07:19 +08:00
stonezdj(Daojun Zhang) bef66740ec
Update the severity, fixed version and cvss_score_v3 (#21915) 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-04-25 06:30:58 +00:00
Prasanth Baskar 972965ff5a
FIX: Display 'No SBOM' in multi-arch images in HarborUI (#21459) 
fix: handle multi-arch images with SBOMs in HarborUI

* Updated the `hasChild` method to check for the presence of
`child_digest` in the `references` array.
* This ensures that SBOMs are correctly displayed for multi-arch images,
where child artifacts may contain their own SBOMs.
* Previously, No SBOM label was displayed for multi-arch images.

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-04-24 12:23:09 +00:00
Wang Yan 187f1a9ffb
enhance the query judgement (#21924) 
the query parameter cannot contains orm.ExerSep which is key characters that used by orm.
the pull request enhances the validation for query parameters.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-04-24 18:20:33 +08:00
stonezdj(Daojun Zhang) ff2f4b0e71
Remove the error check never happen (#21916) 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-04-24 02:41:16 +00:00
Prasanth Baskar 9850f1404d
Add missing step in e2e pipeline setup (#21888) 
add missing step in e2e

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-04-23 03:02:26 +00:00
Wang Yan ad7be0b42f
revise make file for lint api (#21906) 
Decouple the lint from the api generation step in the makefile.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-04-22 13:36:37 +08:00
Bin Liu 6772477e8a
fix: check blob exist before copying layers samller than chunk size (#21883) 
`copyBlobByChunk()` should like `copyBlob()`, first try to mount an
exists layer, if not mounted or exist, then copy the layer monolithic
or by chunks.

Signed-off-by: Bin Liu <liubin0329@gmail.com>
Signed-off-by: Bin Liu <lb203159@antfin.com>
 2025-04-21 08:08:51 +00:00
stonezdj(Daojun Zhang) a13a16383a
update artifact info (#21902) 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-04-21 15:24:04 +08:00
Wang Yan b58a60e273
update gitaction machine to 22.04 (#21900) 
Per https://github.com/actions/runner-images/issues/11101, the ubuntu 20.04 is out of support. Up it to the 22.04

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-04-21 10:13:21 +08:00
Chlins Zhang 9dcbd56e52
chore: bump golangci-lint to v2 (#21887) 
Signed-off-by: chlins <chlins.zhang@gmail.com>
 2025-04-17 14:28:55 +08:00
miner f8f1994c9e
fix jobservice container loglevel consistent with job_log (#21874) 
Signed-off-by: yminer <miner.yang@broadcom.com>
 2025-04-15 14:07:39 +08:00
Chlins Zhang bfc29904f9
fix: support preheat cnai model artifact (#21849) 
Signed-off-by: chlins <chlins.zhang@gmail.com>
 2025-04-08 19:49:46 +08:00
stonezdj(Daojun Zhang) 259c8a2053
Update robot testcase related to security hub row count to 15 by default (#21846) 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-04-08 08:35:02 +00:00
Prasanth Baskar 7ad799c7c7
Update dependencies in Harbor UI (#21823) 
* deps: update src/portal/app-swagger-ui

Signed-off-by: bupd <bupdprasanth@gmail.com>

* deps: update swagger-ui

Signed-off-by: bupd <bupdprasanth@gmail.com>

* deps: update src/portal

Signed-off-by: bupd <bupdprasanth@gmail.com>

---------

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-04-07 16:26:52 +08:00
Wang Yan d0917e3e66
bump base version for v2.14 (#21819) 
Signed-off-by: wang yan <wangyan@vmware.com>
 2025-04-03 16:04:10 +08:00
Wang Yan 68eea5f3fd
bump up jwt and beego (#21814) 
upgrdes the dependencies to resolve the upstream issues.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-04-02 09:50:18 +00:00
stonezdj(Daojun Zhang) b60bd1a69b
Update xpath for some UI components (#21817) 
Update testcase for audit log enhancement
    Add e2e_setup for e2e testcases

Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-04-02 09:12:22 +00:00
stonezdj(Daojun Zhang) 280ab5a027
Rule out the duplicate login event and false logout event for oidc (#21811) 
* Ignore the second /c/log_out event

   fix the issue logout event logged twice

Signed-off-by: stonezdj <stone.zhang@broadcom.com>

* Rule out the duplicate login event and false logout event for oidc

Signed-off-by: stonezdj <stonezdj@gmail.com>

---------

Signed-off-by: stonezdj <stone.zhang@broadcom.com>
Signed-off-by: stonezdj <stonezdj@gmail.com>
 2025-04-02 08:34:38 +00:00
Daniel Jiang 5b28be8252
Bump up trivy and trivy-adapter to fix CVE (#21816) 
Signed-off-by: Daniel Jiang <daniel.jiang@broadcom.com>
 2025-04-02 07:36:51 +00:00
Wang Yan e216f6beb9
bump up golang version (#21813) 
Signed-off-by: wang yan <wangyan@vmware.com>
 2025-04-02 13:58:49 +08:00
Chlins Zhang 45d73acec4
chore: format the go.mod (#21812) 
Signed-off-by: chlins <chlins.zhang@gmail.com>
 2025-04-01 09:36:34 +00:00
Prasanth Baskar 5d776a8a9e
Remove top copy pull cmd button (#21810) 
remove top copy pull cmd button

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-04-01 16:54:47 +08:00
stonezdj(Daojun Zhang) 79a24a42d9
Add operation_descrtion when forward audit log (#21786) 
skip to log error message when log endpoint is emtpy

Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-04-01 06:02:03 +00:00
Prasanth Baskar 92297189ab
Fix: Modelfs overflow in UI. (#21791) 
fix modelfs overflow in UI

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-04-01 09:59:49 +08:00
Wang Yan dce7d9f5cf
fix orm filterable issue (#21797) 
the orm Filterable function always return true even set the tag of the field as false

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-31 07:11:57 +00:00
stonezdj(Daojun Zhang) 1641c799ed
Add operation description for delete tag event (#21807) 
fixes #21798

Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-03-31 06:04:55 +00:00
stonezdj(Daojun Zhang) 72c1b9098a
Add tips for "Other events" (#21788) 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-03-31 03:15:59 +00:00
miner 33d1a24127
clean up robot account for SBOM Job (#21794) 
Signed-off-by: yminer <miner.yang@broadcom.com>
 2025-03-28 09:40:50 +00:00
Prasanth Baskar 9cde2c3d78
feat: Persistent Page Size UI (#21627) 
* update page size to global

Signed-off-by: bupd <bupdprasanth@gmail.com>

* update page size test

Signed-off-by: bupd <bupdprasanth@gmail.com>

* increase top page size to 100

Signed-off-by: bupd <bupdprasanth@gmail.com>

* fix lint

Signed-off-by: bupd <bupdprasanth@gmail.com>

* increase all page size to 100

* update all other pages to have same size factors

Signed-off-by: bupd <bupdprasanth@gmail.com>

* add page sizes to constants

Signed-off-by: bupd <bupdprasanth@gmail.com>

---------

Signed-off-by: bupd <bupdprasanth@gmail.com>
Co-authored-by: Vadim Bauer <vb@container-registry.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-27 14:58:20 +00:00
Wang Yan e9a8c05508
fix 21118 (#21792) 
fix #21118
In the current robot API, querying with ?q=level=system returns both system and project-level robots.
This change addresses the issue by ensuring that specifying level=system will return only system-level robots.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-27 16:43:13 +08:00
Kostiantyn Yevchuk 9283e762b5
Bump golang.org/x/oauth2 from v0.25.0 to v0.27.0 (#21757) 
bump x/oauth2 to 0.27.0

Signed-off-by: Kostiantyn Yevchuk <kostiantyn.yevchuk@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-25 10:20:33 +00:00
Wang Yan 68fb789354
update robot log level (#21778) 
fix #21762

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-25 07:14:53 +00:00
dependabot[bot] 9dcf96f8d0
chore(deps): bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 in /src (#21769) 
chore(deps): bump github.com/golang-jwt/jwt/v5 in /src

Bumps [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) from 5.2.1 to 5.2.2.
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v5
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-25 06:10:43 +00:00
Wang Yan af4c123f5f
update oidc login log level (#21775) 
Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-25 04:01:04 +00:00
Ian Seyer 0a5ade8faa
Suppress aborthandler (#21479) 
* chore(deps): bump go.opentelemetry.io/otel from 1.31.0 to 1.32.0 in /src (#21162)

Bumps [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go) from 1.31.0 to 1.32.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.31.0...v1.32.0)

---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: miner <yminer@vmware.com>
Signed-off-by: ianseyer <iseyer@cloudflare.com>

* Suppresses net.http/abortHandler panic

Signed-off-by: ianseyer <iseyer@cloudflare.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: ianseyer <iseyer@cloudflare.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: miner <yminer@vmware.com>
Co-authored-by: ianseyer <iseyer@cloudflare.com>
Co-authored-by: Daniel Jiang <jiangd@vmware.com>
 2025-03-24 14:14:42 +00:00
Dee Kryvenko 87b9751d1c
Fix token service returning empty token on tls certificate issue without any error (#20081) 
Signed-off-by: Dee Kryvenko <dee@selfcloud.tech>
Co-authored-by: Wang Yan <wangyan@vmware.com>
Co-authored-by: Orlix <7236111+OrlinVasilev@users.noreply.github.com>
Co-authored-by: Vadim Bauer <vb@container-registry.com>
 2025-03-24 13:14:59 +00:00
dependabot[bot] ca825df27f
chore(deps): bump helm.sh/helm/v3 from 3.17.0 to 3.17.2 in /src (#21745) 
Bumps [helm.sh/helm/v3](https://github.com/helm/helm) from 3.17.0 to 3.17.2.
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](https://github.com/helm/helm/compare/v3.17.0...v3.17.2)

---
updated-dependencies:
- dependency-name: helm.sh/helm/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Orlix <7236111+OrlinVasilev@users.noreply.github.com>
 2025-03-24 10:11:45 +00:00
dependabot[bot] 7d1726afd6
chore(deps): bump golang.org/x/net from 0.34.0 to 0.37.0 in /src (#21744) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.34.0 to 0.37.0.
- [Commits](https://github.com/golang/net/compare/v0.34.0...v0.37.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-24 11:33:40 +02:00
dependabot[bot] 3d21dd29f1
chore(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in /src (#21731) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.34.0 to 0.36.0.
- [Commits](https://github.com/golang/net/compare/v0.34.0...v0.36.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-24 06:59:45 +00:00
Zhaoxinxin c806b7e787
fix: Remove top error message about no README or license (#21754) 
fix: Remove top error message about no README or license

Signed-off-by: zhaoxinxin <1186037180@qq.com>
 2025-03-24 13:56:46 +08:00
Wang Yan b6c083d734
fix logout redirect (#21765) 
For the default redirection, to the sign page.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-21 11:10:32 +00:00
dependabot[bot] bcfc1d8179
chore(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.57.0 to 0.60.0 in /src (#21716) 
chore(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp

Bumps [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib) from 0.57.0 to 0.60.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.57.0...zpages/v0.60.0)

---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-21 08:58:37 +00:00
Wang Yan 4f56f5d278
redirect to the sign-in page (#21764) 
If redirect to the root page, harbor UI will redirect to the OIDC login page automaticlly.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-21 16:20:50 +08:00